News

Google says 2026 will be the year AI supercharges cybercrime

Artificial Intelligence, automation, CISO, cloud security, cybercrime, cybersecurity, Don't miss, Google, Google Cloud, identity management, News, predictions, report /

Google says 2026 will be the year AI supercharges cybercrime 2025-11-05 at 07:06 By Anamarija Pogorelec Security leaders are staring down a year of major change. In its Cybersecurity Forecast 2026, Google paints a picture of a threat landscape transformed by AI, supercharged cybercrime, and increasingly aggressive nation-state operations. Attackers are moving faster, scaling their […]

Google says 2026 will be the year AI supercharges cybercrime Read More »

Former ransomware negotiators allegedly targeted US firms with ALPHV/BlackCat ransomware

arrest, cybercrime, Don't miss, Hot stuff, News, Ransomware, US DoJ, USA /

Former ransomware negotiators allegedly targeted US firms with ALPHV/BlackCat ransomware 2025-11-04 at 15:04 By Zeljka Zorz A ransomware negotiator and an incident response manager have been indicted in Florida for allegedly conspiring to deploy the ALPHV/BlackCat ransomware against multiple US companies and extorting nearly $1.3 million from one of the victims. According to a federal

Former ransomware negotiators allegedly targeted US firms with ALPHV/BlackCat ransomware Read More »

European authorities dismantle €600 million crypto scam network

Cryptocurrency, cybercrime, EU, Eurojust, Europe, law enforcement, News, scams /

European authorities dismantle €600 million crypto scam network 2025-11-04 at 13:25 By Sinisa Markovic Nine people have been arrested in a coordinated international operation targeting a large cryptocurrency money laundering network that defrauded victims of more than €600 million. The operation was led by Eurojust, the EU’s judicial cooperation agency, which brought together investigators and

European authorities dismantle €600 million crypto scam network Read More »

How nations build and defend their cyberspace capabilities

attacks, CERT, CISO, cyber attribution, cybersecurity, Cyberwarfare, Don't miss, Features, Government, Hot stuff, News, strategy, tips /

How nations build and defend their cyberspace capabilities 2025-11-04 at 11:54 By Mirko Zorz In this Help Net Security interview, Dr. Bernhards Blumbergs, Lead Cyber Security Expert at CERT.LV, discusses how cyberspace has become an integral part of national and military operations. He explains how countries develop capabilities to act and defend in this domain,

How nations build and defend their cyberspace capabilities Read More »

Cybersecurity jobs available right now: November 4, 2025

cybersecurity jobs, News /

Cybersecurity jobs available right now: November 4, 2025 2025-11-04 at 07:55 By Anamarija Pogorelec Cybersecurity Architect Alstom | France | On-site – View job details As a Cybersecurity Architect, you will analyze solutions, identify associated risks, and propose security architecture models by involving various cybersecurity experts (network, IAM, SIEM, SOC, etc.) and applying the cybersecurity

Cybersecurity jobs available right now: November 4, 2025 Read More »

Financial services can’t shake security debt

Application Security, cybersecurity, financial industry, News, open source, remediation, report, Veracode /

Financial services can’t shake security debt 2025-11-04 at 07:30 By Anamarija Pogorelec In financial services, application security risk is becoming a long game. Fewer flaws appear in new code, but old ones linger longer, creating a kind of software “interest” that keeps growing, according to Veracode’s 2025 State of Software Security report. Researchers analyzed data

Financial services can’t shake security debt Read More »

Product showcase: Cogent Community democratizes vulnerability intelligence with agentic AI

Cogent Security, Don't miss, Hot stuff, News, Product showcase, vulnerability management /

Product showcase: Cogent Community democratizes vulnerability intelligence with agentic AI 2025-11-03 at 18:13 By Help Net Security The volume of threat intelligence data has grown exponentially, but the ability to interpret and act on it has not. Every day brings new CVE disclosures, exploit releases, and vendor advisories. Teams are buried under overlapping feeds, inconsistent

Product showcase: Cogent Community democratizes vulnerability intelligence with agentic AI Read More »

Cyber-espionage campaign mirroring Sandworm TTPs hit Russian and Belarusian military

Belarus, cyber espionage, Cyble, Don't miss, Hot stuff, News, Russian Federation, Seqrite, spear-phishing /

Cyber-espionage campaign mirroring Sandworm TTPs hit Russian and Belarusian military 2025-11-03 at 15:57 By Zeljka Zorz A spear-phishing campaign aimed to compromise Russian and Belarusian military personnel by using military-themed documents as a lure has been flagged by Cyble and Seqrite security researchers. The goal of the campaign is to get targets to download and

Cyber-espionage campaign mirroring Sandworm TTPs hit Russian and Belarusian military Read More »

A new way to think about zero trust for workloads

CISO, cybersecurity, Don't miss, enterprise, Features, framework, Hot stuff, News, OpenID, research, SentinelOne, strategy, Zero Networks, zero trust /

A new way to think about zero trust for workloads 2025-11-03 at 09:10 By Mirko Zorz Static credentials have been a weak point in cloud security for years. A new paper by researchers from SentinelOne takes direct aim at that issue with a practical model for authenticating workloads without long-lived secrets. Instead of relying on

A new way to think about zero trust for workloads Read More »

Heisenberg: Open-source software supply chain health check tool

AppOmni, Don't miss, GitHub, News, open source, software, supply chain /

Heisenberg: Open-source software supply chain health check tool 2025-11-03 at 08:30 By Mirko Zorz Heisenberg is an open-source tool that checks the health of a software supply chain. It analyzes dependencies using data from deps.dev, Software Bills of Materials (SBOMs), and external advisories to measure package health, detect risks, and generate reports for individual dependencies

Heisenberg: Open-source software supply chain health check tool Read More »

Securing real-time payments without slowing them down

cybersecurity, Don't miss, Features, financial industry, fraud, Hot stuff, identity verification, News, regulation, security controls, Tyro /

Securing real-time payments without slowing them down 2025-11-03 at 08:00 By Mirko Zorz In this Help Net Security interview, Arun Singh, CISO at Tyro, discusses what it takes to secure real-time payments without slowing them down. He explains how analytics, authentication, and better industry cooperation can help stay ahead of fraud. Singh also touches on

Securing real-time payments without slowing them down Read More »

Employees keep finding new ways around company access controls

1Password, access control, Artificial Intelligence, cybersecurity, News, passwords, policy, report, SaaS, shadow IT /

Employees keep finding new ways around company access controls 2025-11-03 at 07:30 By Anamarija Pogorelec AI, SaaS, and personal devices are changing how people get work done, but the tools that protect company systems have not kept up, according to 1Password. Tools like SSO, MDM, and IAM no longer align with how employees and AI

Employees keep finding new ways around company access controls Read More »

Europe’s phone networks are drowning in fake calls

cybersecurity, EU, Europe, Europol, fraud, law enforcement, News, regulation, report, scams, spoofing /

Europe’s phone networks are drowning in fake calls 2025-11-03 at 07:00 By Anamarija Pogorelec Caller ID spoofing has become one of Europe’s most persistent enablers of cyber fraud. A new position paper from Europol warns that manipulated phone identities now drive much of the continent’s financial and social engineering crime, making it difficult for law

Europe’s phone networks are drowning in fake calls Read More »

Week in review: WSUS vulnerability exploited to drop Skuld infostealer, PoC for BIND 9 DNS flaw published

News, Week in review /

Week in review: WSUS vulnerability exploited to drop Skuld infostealer, PoC for BIND 9 DNS flaw published 2025-11-02 at 11:24 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Can your earbuds recognize you? Researchers are working on it Biometric authentication has moved from fingerprints

Week in review: WSUS vulnerability exploited to drop Skuld infostealer, PoC for BIND 9 DNS flaw published Read More »

CISA and partners take action as Microsoft Exchange security risks mount

CISA, Don't miss, email security, guidelines, Hot stuff, Microsoft Exchange, News, NSA, tips /

CISA and partners take action as Microsoft Exchange security risks mount 2025-10-31 at 19:32 By Zeljka Zorz In partnership with international cybersecurity agencies, the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) outlined security best practices for organizations that use on-premises versions of Microsoft Exchange Server. Microsoft Exchange servers are

CISA and partners take action as Microsoft Exchange security risks mount Read More »

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491)

Arctic Wolf Networks, China, cyber espionage, Don't miss, government-backed attacks, Hot stuff, News, Trend Micro, vulnerability, Windows /

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) 2025-10-31 at 17:09 By Zeljka Zorz A Windows vulnerability (CVE-2025-9491, aka ZDI-CAN-25373) that state-sponsored threat actors and cybercrime groups have been quietly leveraging since at least 2017 continues to be exploited for attacks. “Arctic Wolf Labs assesses with high confidence that [the campaign they detected]

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) Read More »

The secret to audit success? Think like your auditor

Appfire, CISO, cybersecurity, Don't miss, News, security auditing, Video /

The secret to audit success? Think like your auditor 2025-10-31 at 09:52 By Help Net Security In this Help Net Security video, Doug Kersten, CISO at Appfire, shares practical, experience-driven advice on how CISOs can avoid the most common mistakes when preparing for an audit. He breaks down what often frustrates auditors, why organization and

The secret to audit success? Think like your auditor Read More »

Shadow AI: New ideas emerge to tackle an old problem in new form

1Password, Artificial Intelligence, Don't miss, Eye Security, Hot stuff, LLMs, News, open source, prompt injection, shadow IT, survey /

Shadow AI: New ideas emerge to tackle an old problem in new form 2025-10-31 at 09:13 By Zeljka Zorz Shadow AI is the second-most prevalent form of shadow IT in corporate environments, 1Password’s latest annual report has revealed. Based on a survey of over 5,000 IT/security professionals and knowledge workers in the US, UK, Europe,

Shadow AI: New ideas emerge to tackle an old problem in new form Read More »

AI chatbots are sliding toward a privacy crisis

Artificial Intelligence, ChatGPT, CISO, cyber risk, cybersecurity, Don't miss, Features, generative AI, Harmonic, Ivanti, LLMs, News, OpenAI, Privacy, Tanium /

AI chatbots are sliding toward a privacy crisis 2025-10-31 at 09:00 By Sinisa Markovic AI chat tools are taking over offices, but at what cost to privacy? People often feel anonymous in chat interfaces and may share personal data without realizing the risks. Cybercriminals see the same opening, and it may only be a matter

AI chatbots are sliding toward a privacy crisis Read More »

Scroll to Top